From 69798e46f3314a99d293d97f8046046e0887f0c3 Mon Sep 17 00:00:00 2001
From: Bowei Zhuang <zhuangbowei.zbw@alibaba-inc.com>
Date: Wed, 24 Jan 2024 19:42:13 +0800
Subject: [PATCH 1/3] ci: lowercase repo

Signed-off-by: Bowei Zhuang <zhuangbowei.zbw@alibaba-inc.com>
---
 .github/workflows/ci-basic.yml               |  5 ++++-
 .github/workflows/ci-build-image.yml         |  5 ++++-
 .github/workflows/ci-e2e.yml                 |  6 ++++++
 .github/workflows/ci-userspace-convertor.yml |  5 ++++-
 .github/workflows/ci.yml                     | 12 ++++++++++++
 5 files changed, 30 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci-basic.yml b/.github/workflows/ci-basic.yml
index c5b1ecaf..6f3d5f82 100644
--- a/.github/workflows/ci-basic.yml
+++ b/.github/workflows/ci-basic.yml
@@ -5,6 +5,9 @@ on:
       image-tag:
         required: true
         type: string
+      github-repository:
+        required: true
+        type: string
 
 jobs:
   run-ci-basic:
@@ -12,7 +15,7 @@ jobs:
     runs-on: ubuntu-22.04
     timeout-minutes: 10
     container:
-      image: ghcr.io/${{ github.repository }}/overlaybd-ci-images:${{ inputs.image-tag }}
+      image: ghcr.io/${{ inputs.github-repository }}/overlaybd-ci-images:${{ inputs.image-tag }}
       credentials:
         username: ${{ github.actor }}
         password: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/ci-build-image.yml b/.github/workflows/ci-build-image.yml
index 27921609..292fe012 100644
--- a/.github/workflows/ci-build-image.yml
+++ b/.github/workflows/ci-build-image.yml
@@ -8,6 +8,9 @@ on:
       image-tag:
         required: true
         type: string
+      github-repository:
+        required: true
+        type: string
 
 env:
   GO_VERSION: "1.19"
@@ -51,7 +54,7 @@ jobs:
       - name: Build and Push
         uses: docker/build-push-action@v4
         with:
-          tags: ghcr.io/${{ github.repository }}/overlaybd-ci-images:${{ inputs.image-tag }}
+          tags: ghcr.io/${{ inputs.github-repository }}/overlaybd-ci-images:${{ inputs.image-tag }}
           push: true
           context: .
           platforms: linux/amd64
diff --git a/.github/workflows/ci-e2e.yml b/.github/workflows/ci-e2e.yml
index c3807291..3202290d 100644
--- a/.github/workflows/ci-e2e.yml
+++ b/.github/workflows/ci-e2e.yml
@@ -8,6 +8,9 @@ on:
       image-tag:
         required: true
         type: string
+      github-repository:
+        required: true
+        type: string
 
 concurrency:
   group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
@@ -19,6 +22,7 @@ jobs:
     with:
       commit-hash: ${{ inputs.commit-hash }}
       image-tag: ${{ inputs.image-tag }}
+      github-repository: ${{ inputs.github-repository }}
     secrets: inherit
 
   run-ci-basic:
@@ -26,6 +30,7 @@ jobs:
     uses: ./.github/workflows/ci-basic.yml
     with:
       image-tag: ${{ inputs.image-tag }}
+      github-repository: ${{ inputs.github-repository }}
     secrets: inherit
 
   run-ci-userspace-convertor:
@@ -34,4 +39,5 @@ jobs:
     with:
       commit-hash: ${{ inputs.commit-hash }}
       image-tag: ${{ inputs.image-tag }}
+      github-repository: ${{ inputs.github-repository }}
     secrets: inherit
diff --git a/.github/workflows/ci-userspace-convertor.yml b/.github/workflows/ci-userspace-convertor.yml
index d2f0992b..92188443 100644
--- a/.github/workflows/ci-userspace-convertor.yml
+++ b/.github/workflows/ci-userspace-convertor.yml
@@ -8,6 +8,9 @@ on:
       image-tag:
         required: true
         type: string
+      github-repository:
+        required: true
+        type: string
 
 jobs:
   run-ci-userspace-convertor:
@@ -15,7 +18,7 @@ jobs:
     runs-on: ubuntu-22.04
     timeout-minutes: 10
     container:
-      image: ghcr.io/${{ github.repository }}/overlaybd-ci-images:${{ inputs.image-tag }}
+      image: ghcr.io/${{ inputs.github-repository }}/overlaybd-ci-images:${{ inputs.image-tag }}
       credentials:
         username: ${{ github.actor }}
         password: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 56ab2da4..b56a29cd 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -45,11 +45,23 @@ jobs:
         run: |
           sudo GO_TESTFLAGS=-v make test
 
+  lowercase-repo:
+    name: Lowercase Repo
+    runs-on: ubuntu-22.04
+    timeout-minutes: 10
+    outputs:
+      repository: ${{ steps.lowercase_repository.outputs.repository }}
+    steps:
+    - id: lowercase_repository
+      run: echo "repository=${GITHUB_REPOSITORY,,}" >> "$GITHUB_OUTPUT"
+
   e2e-test:
+    needs: lowercase-repo
     name: E2E Test
     if: ${{ contains(github.event.pull_request.labels.*.name, 'ok-to-test') || github.event_name == 'push' }}
     uses: ./.github/workflows/ci-e2e.yml
     with:
       commit-hash: ${{ github.event.pull_request.head.sha || github.sha }}
       image-tag: ${{ github.event.pull_request.number || 'default' }}
+      github-repository: ${{ needs.lowercase-repo.outputs.repository }}
     secrets: inherit

From a03d841afa03f044c94c5694d96da5338af33210 Mon Sep 17 00:00:00 2001
From: Bowei Zhuang <zhuangbowei.zbw@alibaba-inc.com>
Date: Wed, 24 Jan 2024 19:32:51 +0800
Subject: [PATCH 2/3] ci: add turbo reproduce test & use local registry

Signed-off-by: Bowei Zhuang <zhuangbowei.zbw@alibaba-inc.com>
---
 .github/workflows/ci-userspace-convertor.yml  |  4 +-
 ci/build_image/Dockerfile                     | 11 +++-
 ci/build_image/start_services.sh              |  2 +
 ci/uconv_reproduce/centos/config-turbo.json   |  1 +
 ci/uconv_reproduce/centos/manifest-turbo.json |  1 +
 ci/uconv_reproduce/ci-uconv-reproduce.sh      | 65 +++++++++++++------
 ci/uconv_reproduce/nginx/config-turbo.json    |  1 +
 ci/uconv_reproduce/nginx/manifest-turbo.json  |  1 +
 ci/uconv_reproduce/redis/config-turbo.json    |  1 +
 ci/uconv_reproduce/redis/manifest-turbo.json  |  1 +
 ci/uconv_reproduce/ubuntu/config-turbo.json   |  1 +
 ci/uconv_reproduce/ubuntu/manifest-turbo.json |  1 +
 .../wordpress/config-turbo.json               |  1 +
 .../wordpress/manifest-turbo.json             |  1 +
 14 files changed, 69 insertions(+), 23 deletions(-)
 create mode 100644 ci/uconv_reproduce/centos/config-turbo.json
 create mode 100644 ci/uconv_reproduce/centos/manifest-turbo.json
 create mode 100644 ci/uconv_reproduce/nginx/config-turbo.json
 create mode 100644 ci/uconv_reproduce/nginx/manifest-turbo.json
 create mode 100644 ci/uconv_reproduce/redis/config-turbo.json
 create mode 100644 ci/uconv_reproduce/redis/manifest-turbo.json
 create mode 100644 ci/uconv_reproduce/ubuntu/config-turbo.json
 create mode 100644 ci/uconv_reproduce/ubuntu/manifest-turbo.json
 create mode 100644 ci/uconv_reproduce/wordpress/config-turbo.json
 create mode 100644 ci/uconv_reproduce/wordpress/manifest-turbo.json

diff --git a/.github/workflows/ci-userspace-convertor.yml b/.github/workflows/ci-userspace-convertor.yml
index 92188443..2a5350db 100644
--- a/.github/workflows/ci-userspace-convertor.yml
+++ b/.github/workflows/ci-userspace-convertor.yml
@@ -41,7 +41,9 @@ jobs:
         shell: bash
         run: |
           bash start_services.sh
-          sleep 5s
+          sleep 3s
+          docker run -d -p 5000:5000 --restart always --name registry registry:2
+          sleep 3s
 
       - name: CI - uconv reproduce
         working-directory: ci/uconv_reproduce
diff --git a/ci/build_image/Dockerfile b/ci/build_image/Dockerfile
index c806c526..ce4d9b5f 100644
--- a/ci/build_image/Dockerfile
+++ b/ci/build_image/Dockerfile
@@ -41,8 +41,17 @@ SHELL ["/bin/bash", "-c"]
 WORKDIR /app
 COPY --from=builder /tmp/overlaybd-snapshotter_${RELEASE_VERSION}_amd64.deb .
 COPY ./ci/build_image/start_services.sh .
+
+RUN apt-get update && apt-get install -y apt-transport-https ca-certificates curl gnupg lsb-release software-properties-common && \
+    curl -fsSL https://download.docker.com/linux/ubuntu/gpg | gpg --dearmor -o /usr/share/keyrings/docker-archive-keyring.gpg && \
+    echo \
+      "deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/docker-archive-keyring.gpg] https://download.docker.com/linux/ubuntu \
+      $(lsb_release -cs) stable" | tee /etc/apt/sources.list.d/docker.list > /dev/null && \
+    apt-get update && apt-get install -y docker-ce docker-ce-cli containerd.io && \
+    apt-get clean && rm -rf /var/lib/apt/lists/*
+
 RUN \
-    apt update && apt install -y containerd libnl-3-200 libnl-genl-3-200 libcurl4-openssl-dev libaio-dev wget less kmod && \
+    apt update && apt install -y libnl-3-200 libnl-genl-3-200 libcurl4-openssl-dev libaio-dev wget less kmod && \
     wget https://github.com/containerd/overlaybd/releases/download/v${OBD_VERSION}/overlaybd-${OBD_VERSION}-0ubuntu1.22.04.x86_64.deb && \
     dpkg -i overlaybd-${OBD_VERSION}-0ubuntu1.22.04.x86_64.deb && \
     dpkg -i overlaybd-snapshotter_${RELEASE_VERSION}_amd64.deb && \
diff --git a/ci/build_image/start_services.sh b/ci/build_image/start_services.sh
index 5f9e5248..32dd4720 100644
--- a/ci/build_image/start_services.sh
+++ b/ci/build_image/start_services.sh
@@ -20,3 +20,5 @@ fi
 /opt/overlaybd/snapshotter/overlaybd-snapshotter &>/var/log/overlaybd-snapshotter.log &
 
 /sbin/modprobe overlay && /usr/bin/containerd &>/var/log/containerd.log &
+
+dockerd &>/var/log/dockerd.log &
diff --git a/ci/uconv_reproduce/centos/config-turbo.json b/ci/uconv_reproduce/centos/config-turbo.json
new file mode 100644
index 00000000..a8234abc
--- /dev/null
+++ b/ci/uconv_reproduce/centos/config-turbo.json
@@ -0,0 +1 @@
+{"created":"2021-09-15T18:20:23.99863383Z","architecture":"amd64","os":"linux","config":{"Env":["PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin"],"Cmd":["/bin/bash"],"Labels":{"org.label-schema.build-date":"20201113","org.label-schema.license":"GPLv2","org.label-schema.name":"CentOS Base Image","org.label-schema.schema-version":"1.0","org.label-schema.vendor":"CentOS","org.opencontainers.image.created":"2020-11-13 00:00:00+00:00","org.opencontainers.image.licenses":"GPL-2.0-only","org.opencontainers.image.title":"CentOS Base Image","org.opencontainers.image.vendor":"CentOS"}},"rootfs":{"type":"layers","diff_ids":["sha256:a5cdf182bbffc6992b556633bbb275b559056b6e953133772a80fa261886c07b"]},"history":[{"created":"2021-09-15T18:20:23.417639551Z","created_by":"/bin/sh -c #(nop) ADD file:b3ebbe8bd304723d43b7b44a6d990cd657b63d93d6a2a9293983a30bfc1dfa53 in / "},{"created":"2021-09-15T18:20:23.819893035Z","created_by":"/bin/sh -c #(nop)  LABEL org.label-schema.schema-version=1.0 org.label-schema.name=CentOS Base Image org.label-schema.vendor=CentOS org.label-schema.license=GPLv2 org.label-schema.build-date=20201113 org.opencontainers.image.title=CentOS Base Image org.opencontainers.image.vendor=CentOS org.opencontainers.image.licenses=GPL-2.0-only org.opencontainers.image.created=2020-11-13 00:00:00+00:00","empty_layer":true},{"created":"2021-09-15T18:20:23.99863383Z","created_by":"/bin/sh -c #(nop)  CMD [\"/bin/bash\"]","empty_layer":true}]}
\ No newline at end of file
diff --git a/ci/uconv_reproduce/centos/manifest-turbo.json b/ci/uconv_reproduce/centos/manifest-turbo.json
new file mode 100644
index 00000000..badf1bd8
--- /dev/null
+++ b/ci/uconv_reproduce/centos/manifest-turbo.json
@@ -0,0 +1 @@
+{"schemaVersion":2,"mediaType":"application/vnd.docker.distribution.manifest.v2+json","config":{"mediaType":"application/vnd.docker.container.image.v1+json","digest":"sha256:bdeebc045cc88055079dd5ab899cf594614b2757d5b572ec7acc6f4a24031fb1","size":1476},"layers":[{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:e91a425b0b5001fa96ae2909db392034ee9eccfdf9347410a1343719db83054e","size":2717102,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:e91a425b0b5001fa96ae2909db392034ee9eccfdf9347410a1343719db83054e","containerd.io/snapshot/overlaybd/blob-size":"2717102","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:2d473b07cdd5f0912cd6f1a703352c82b512407db6b05b43f2553732b55df3bc","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}}]}
\ No newline at end of file
diff --git a/ci/uconv_reproduce/ci-uconv-reproduce.sh b/ci/uconv_reproduce/ci-uconv-reproduce.sh
index abe67d4a..c12bd4cd 100644
--- a/ci/uconv_reproduce/ci-uconv-reproduce.sh
+++ b/ci/uconv_reproduce/ci-uconv-reproduce.sh
@@ -1,52 +1,75 @@
 #!/bin/bash
 
-apt install -y python3
+apt install -y python3 jq
 
 convertor="/opt/overlaybd/snapshotter/convertor"
 images=("centos:centos7.9.2009" "ubuntu:22.04" "redis:7.2.3" "wordpress:6.4.2" "nginx:1.25.3")
-repo="registry.hub.docker.com/overlaybd"
+registry="localhost:5000"
 ci_base=$(pwd)
 
 result=0
 
-for image in ${images[@]}
+for image in "${images[@]}"
 do
+    from_img="registry.hub.docker.com/overlaybd/${image}"
+    ctr i pull "${from_img}" &> /dev/null
+    ctr i tag "${from_img}" "${registry}/${image}" &> /dev/null
+    ctr i push "${registry}/${image}" &> /dev/null
+
     img=${image%%":"*}
     tag=${image##*":"}
-    echo ${img} ${tag}
+    echo "${img} ${tag}"
+
+    workspace="${ci_base}/workspace_${image/:/_}"
+
+    rm -rf "${workspace}"
+    mkdir -p "${workspace}"
 
-    o_tag="${tag}_obd"
-    tmp_dir="${ci_base}/tmp_conv_${image/:/_}"
+    tag_obd="${tag}_overlaybd"
+    tag_turbo="${tag}_turbo"
+    manifest_obd="${workspace}/manifest.json"
+    manifest_turbo="${workspace}/manifest-turbo.json"
+    config_obd="${workspace}/config.json"
+    config_turbo="${workspace}/config-turbo.json"
+    output_obd="${workspace}/convert.overlaybd.out"
+    output_turbo="${workspace}/convert.turbo.out"
 
-    rm -rf ${tmp_dir}
-    mkdir -p ${tmp_dir}
+    ${convertor} -r "${registry}/${img}" -i "${tag}" --overlaybd "${tag_obd}" -d "${workspace}/overlaybd_tmp_conv" &> "${output_obd}"
+    curl -H "Accept: application/vnd.docker.distribution.manifest.v2+json,application/vnd.oci.image.manifest.v1+json" -o "${manifest_obd}" "${registry}/v2/${img}/manifests/${tag_obd}" &> /dev/null
+    configDigest=$(jq '.config.digest' "${manifest_obd}")
+    configDigest=${configDigest//\"/}
+    curl -o "${config_obd}" "${registry}/v2/${img}/blobs/${configDigest}" &> /dev/null
 
-    ${convertor} -r ${repo}/${img}  \
-        --reserve --no-upload --dump-manifest \
-        -i ${tag} -o ${o_tag} -d ${tmp_dir} &>${tmp_dir}/convert.out
+    ${convertor} -r "${registry}/${img}" -i "${tag}" --turboOCI "${tag_turbo}" -d "${workspace}/turbo_tmp_conv" &> "${output_turbo}"
+    curl -H "Accept: application/vnd.docker.distribution.manifest.v2+json,application/vnd.oci.image.manifest.v1+json" -o "${manifest_turbo}" "${registry}/v2/${img}/manifests/${tag_turbo}" &> /dev/null
+    configDigest=$(jq '.config.digest' "${manifest_turbo}")
+    configDigest=${configDigest//\"/}
+    curl -o "${config_turbo}" "${registry}/v2/${img}/blobs/${configDigest}" &> /dev/null
 
     prefix=$(date +%Y%m%d%H%M%S)
-    files=("manifest" "config")
+
+    mode=("manifest" "config" "manifest" "config")
+    actual=("${manifest_obd}" "${config_obd}" "${manifest_turbo}" "${config_turbo}")
+    expected=("${ci_base}/${img}/manifest.json" "${ci_base}/${img}/config.json" "${ci_base}/${img}/manifest-turbo.json" "${ci_base}/${img}/config-turbo.json")
+
     conv_res=0
-    for file in ${files[@]}
-    do
-        fn="${file}.json"
-        # diff ${tmp_dir}/${fn} ${ci_base}/${img}/${fn}
-        python3 compare_layers.py ${file} ${tmp_dir}/${fn} ${ci_base}/${img}/${fn}
+    n=${#mode[@]}
+    for ((i=0; i<n; i++)); do
+        python3 compare_layers.py ${mode[$i]} ${actual[$i]} ${expected[$i]}
         ret=$?
         if [[ ${ret} -eq 0 ]]; then
-            echo "${prefix} ${img} ${file} consistent"
+            echo "${prefix} ${img} ${expected[$i]} consistent"
         else
-            echo "${prefix} ${img} ${file} diff"
+            echo "${prefix} ${img} ${expected[$i]} diff"
             conv_res=1
         fi
     done
 
     if [[ ${conv_res} -eq 1 ]]; then
-        cat ${tmp_dir}/convert.out | sed 's/\\n/\n/g'
+        sed 's/\\n/\n/g' < "${output_obd}"
+        sed 's/\\n/\n/g' < "${output_turbo}"
         result=1
     fi
-    rm -rf ${tmp_dir}
 done
 
 exit ${result}
diff --git a/ci/uconv_reproduce/nginx/config-turbo.json b/ci/uconv_reproduce/nginx/config-turbo.json
new file mode 100644
index 00000000..f071db70
--- /dev/null
+++ b/ci/uconv_reproduce/nginx/config-turbo.json
@@ -0,0 +1 @@
+{"created":"2023-10-24T22:44:45Z","architecture":"amd64","os":"linux","config":{"ExposedPorts":{"80/tcp":{}},"Env":["PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin","NGINX_VERSION=1.25.3","NJS_VERSION=0.8.2","PKG_RELEASE=1~bookworm"],"Entrypoint":["/docker-entrypoint.sh"],"Cmd":["nginx","-g","daemon off;"],"Labels":{"maintainer":"NGINX Docker Maintainers \u003cdocker-maint@nginx.com\u003e"},"StopSignal":"SIGQUIT","ArgsEscaped":true},"rootfs":{"type":"layers","diff_ids":["sha256:e33f3ead13b687a680cf13d7f86a569702cf655a0589aafd55612a917d95a08a","sha256:91383a518f47aeceff58fb3775f03b6a0b76d13bbc26c7b39832a23f1c0b0cde","sha256:766f42e8eb2ac31f367924bd8420fc15f4b44847c3b0722fb1b321e36c3775c2","sha256:49727dd910d22ecb0c3daa57f82525990cf3de2fe6870146e0598f63055b5766","sha256:95e2b5fa5d0146c2ec249d84545cf5cc16260eee36d946039d0c61b71a8b2262","sha256:481660c954bec0aeb5b3710c6a1dacbbbe193f168492121fd5977d5e806bcdef","sha256:85887d672eff2cc622f243384ad72977535756eee73ae785c04a6a4a223b4c8f"]},"history":[{"created":"2023-10-24T22:44:45Z","created_by":"/bin/sh -c #(nop) ADD file:ac3cd70031d35e46d86b876934946ffc8756de4de065fbc926dce642dac07ff3 in / "},{"created":"2023-10-24T22:44:45Z","created_by":"/bin/sh -c #(nop)  CMD [\"bash\"]","empty_layer":true},{"created":"2023-10-24T22:44:45Z","created_by":"LABEL maintainer=NGINX Docker Maintainers \u003cdocker-maint@nginx.com\u003e","comment":"buildkit.dockerfile.v0","empty_layer":true},{"created":"2023-10-24T22:44:45Z","created_by":"ENV NGINX_VERSION=1.25.3","comment":"buildkit.dockerfile.v0","empty_layer":true},{"created":"2023-10-24T22:44:45Z","created_by":"ENV NJS_VERSION=0.8.2","comment":"buildkit.dockerfile.v0","empty_layer":true},{"created":"2023-10-24T22:44:45Z","created_by":"ENV PKG_RELEASE=1~bookworm","comment":"buildkit.dockerfile.v0","empty_layer":true},{"created":"2023-10-24T22:44:45Z","created_by":"RUN /bin/sh -c set -x     \u0026\u0026 groupadd --system --gid 101 nginx     \u0026\u0026 useradd --system --gid nginx --no-create-home --home /nonexistent --comment \"nginx user\" --shell /bin/false --uid 101 nginx     \u0026\u0026 apt-get update     \u0026\u0026 apt-get install --no-install-recommends --no-install-suggests -y gnupg1 ca-certificates     \u0026\u0026     NGINX_GPGKEY=573BFD6B3D8FBC641079A6ABABF5BD827BD9BF62;     NGINX_GPGKEY_PATH=/usr/share/keyrings/nginx-archive-keyring.gpg;     export GNUPGHOME=\"$(mktemp -d)\";     found='';     for server in         hkp://keyserver.ubuntu.com:80         pgp.mit.edu     ; do         echo \"Fetching GPG key $NGINX_GPGKEY from $server\";         gpg1 --keyserver \"$server\" --keyserver-options timeout=10 --recv-keys \"$NGINX_GPGKEY\" \u0026\u0026 found=yes \u0026\u0026 break;     done;     test -z \"$found\" \u0026\u0026 echo \u003e\u00262 \"error: failed to fetch GPG key $NGINX_GPGKEY\" \u0026\u0026 exit 1;     gpg1 --export \"$NGINX_GPGKEY\" \u003e \"$NGINX_GPGKEY_PATH\" ;     rm -rf \"$GNUPGHOME\";     apt-get remove --purge --auto-remove -y gnupg1 \u0026\u0026 rm -rf /var/lib/apt/lists/*     \u0026\u0026 dpkgArch=\"$(dpkg --print-architecture)\"     \u0026\u0026 nginxPackages=\"         nginx=${NGINX_VERSION}-${PKG_RELEASE}         nginx-module-xslt=${NGINX_VERSION}-${PKG_RELEASE}         nginx-module-geoip=${NGINX_VERSION}-${PKG_RELEASE}         nginx-module-image-filter=${NGINX_VERSION}-${PKG_RELEASE}         nginx-module-njs=${NGINX_VERSION}+${NJS_VERSION}-${PKG_RELEASE}     \"     \u0026\u0026 case \"$dpkgArch\" in         amd64|arm64)             echo \"deb [signed-by=$NGINX_GPGKEY_PATH] https://nginx.org/packages/mainline/debian/ bookworm nginx\" \u003e\u003e /etc/apt/sources.list.d/nginx.list             \u0026\u0026 apt-get update             ;;         *)             echo \"deb-src [signed-by=$NGINX_GPGKEY_PATH] https://nginx.org/packages/mainline/debian/ bookworm nginx\" \u003e\u003e /etc/apt/sources.list.d/nginx.list                         \u0026\u0026 tempDir=\"$(mktemp -d)\"             \u0026\u0026 chmod 777 \"$tempDir\"                         \u0026\u0026 savedAptMark=\"$(apt-mark showmanual)\"                         \u0026\u0026 apt-get update             \u0026\u0026 apt-get build-dep -y $nginxPackages             \u0026\u0026 (                 cd \"$tempDir\"                 \u0026\u0026 DEB_BUILD_OPTIONS=\"nocheck parallel=$(nproc)\"                     apt-get source --compile $nginxPackages             )                         \u0026\u0026 apt-mark showmanual | xargs apt-mark auto \u003e /dev/null             \u0026\u0026 { [ -z \"$savedAptMark\" ] || apt-mark manual $savedAptMark; }                         \u0026\u0026 ls -lAFh \"$tempDir\"             \u0026\u0026 ( cd \"$tempDir\" \u0026\u0026 dpkg-scanpackages . \u003e Packages )             \u0026\u0026 grep '^Package: ' \"$tempDir/Packages\"             \u0026\u0026 echo \"deb [ trusted=yes ] file://$tempDir ./\" \u003e /etc/apt/sources.list.d/temp.list             \u0026\u0026 apt-get -o Acquire::GzipIndexes=false update             ;;     esac         \u0026\u0026 apt-get install --no-install-recommends --no-install-suggests -y                         $nginxPackages                         gettext-base                         curl     \u0026\u0026 apt-get remove --purge --auto-remove -y \u0026\u0026 rm -rf /var/lib/apt/lists/* /etc/apt/sources.list.d/nginx.list         \u0026\u0026 if [ -n \"$tempDir\" ]; then         apt-get purge -y --auto-remove         \u0026\u0026 rm -rf \"$tempDir\" /etc/apt/sources.list.d/temp.list;     fi     \u0026\u0026 ln -sf /dev/stdout /var/log/nginx/access.log     \u0026\u0026 ln -sf /dev/stderr /var/log/nginx/error.log     \u0026\u0026 mkdir /docker-entrypoint.d # buildkit","comment":"buildkit.dockerfile.v0"},{"created":"2023-10-24T22:44:45Z","created_by":"COPY docker-entrypoint.sh / # buildkit","comment":"buildkit.dockerfile.v0"},{"created":"2023-10-24T22:44:45Z","created_by":"COPY 10-listen-on-ipv6-by-default.sh /docker-entrypoint.d # buildkit","comment":"buildkit.dockerfile.v0"},{"created":"2023-10-24T22:44:45Z","created_by":"COPY 15-local-resolvers.envsh /docker-entrypoint.d # buildkit","comment":"buildkit.dockerfile.v0"},{"created":"2023-10-24T22:44:45Z","created_by":"COPY 20-envsubst-on-templates.sh /docker-entrypoint.d # buildkit","comment":"buildkit.dockerfile.v0"},{"created":"2023-10-24T22:44:45Z","created_by":"COPY 30-tune-worker-processes.sh /docker-entrypoint.d # buildkit","comment":"buildkit.dockerfile.v0"},{"created":"2023-10-24T22:44:45Z","created_by":"ENTRYPOINT [\"/docker-entrypoint.sh\"]","comment":"buildkit.dockerfile.v0","empty_layer":true},{"created":"2023-10-24T22:44:45Z","created_by":"EXPOSE map[80/tcp:{}]","comment":"buildkit.dockerfile.v0","empty_layer":true},{"created":"2023-10-24T22:44:45Z","created_by":"STOPSIGNAL SIGQUIT","comment":"buildkit.dockerfile.v0","empty_layer":true},{"created":"2023-10-24T22:44:45Z","created_by":"CMD [\"nginx\" \"-g\" \"daemon off;\"]","comment":"buildkit.dockerfile.v0","empty_layer":true}]}
\ No newline at end of file
diff --git a/ci/uconv_reproduce/nginx/manifest-turbo.json b/ci/uconv_reproduce/nginx/manifest-turbo.json
new file mode 100644
index 00000000..03b11291
--- /dev/null
+++ b/ci/uconv_reproduce/nginx/manifest-turbo.json
@@ -0,0 +1 @@
+{"schemaVersion":2,"mediaType":"application/vnd.docker.distribution.manifest.v2+json","config":{"mediaType":"application/vnd.docker.container.image.v1+json","digest":"sha256:50af392da450b64e5eba79a2bf7801f928eeb810bd12bcd348f624faff8b8b1d","size":7001},"layers":[{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:93d5e7762541cd51f8e8dceea4978516596aa3dd837978334b60f0f8c03ca7b0","size":1124551,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:93d5e7762541cd51f8e8dceea4978516596aa3dd837978334b60f0f8c03ca7b0","containerd.io/snapshot/overlaybd/blob-size":"1124551","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:af107e978371b6cd6339127a05502c5eacd1e6b0e9eb7b2f4aa7b6fc87e2dd81","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:1506f7bd93175aeef67b9b3b82d9be033e4190df6ae969f92bc259c521fc57e5","size":1447184,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:1506f7bd93175aeef67b9b3b82d9be033e4190df6ae969f92bc259c521fc57e5","containerd.io/snapshot/overlaybd/blob-size":"1447184","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:336ba1f05c3ede29f0a73d3f88b39a14f6abdc57fafedf3891fd793504440263","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:8e437e609e9ba192e0ee5e565bd2751e259b22865e7d326137d2445d7948c29b","size":5461,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:8e437e609e9ba192e0ee5e565bd2751e259b22865e7d326137d2445d7948c29b","containerd.io/snapshot/overlaybd/blob-size":"5461","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:8c37d2ff6efa0a08f83056109a47aa0caf2cc82136d926d1176cd451f7fbb245","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:4207acbe5f7f14981e6bc9084f027cc0929e7a04522554e502f0d1d86db810bb","size":5515,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:4207acbe5f7f14981e6bc9084f027cc0929e7a04522554e502f0d1d86db810bb","containerd.io/snapshot/overlaybd/blob-size":"5515","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:51d6357098de68f5fc2e50afdaa73fc4fcbdeed2161adc9f14d1d8dae9d94d36","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:bf30195dd726146b4226dd9801be61e0489fffee76c691c4d3548adbfab1e0c1","size":5551,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:bf30195dd726146b4226dd9801be61e0489fffee76c691c4d3548adbfab1e0c1","containerd.io/snapshot/overlaybd/blob-size":"5551","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:782f1ecce57d1fa61421872a16b979ad92057db19841b5811616a749705214f4","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:119182134a3bf46ce36129d941f445c1f25a40aba54ca45125b297ae0333ee0f","size":5606,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:119182134a3bf46ce36129d941f445c1f25a40aba54ca45125b297ae0333ee0f","containerd.io/snapshot/overlaybd/blob-size":"5606","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:5e99d351b073fec15b9817dc5234f32433ef0404849cc66857be2eca5192ccf8","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:686371e8b8e647b5aef01a3efe017beb9416d7351a0d822d6a89bdfc389293cd","size":5635,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:686371e8b8e647b5aef01a3efe017beb9416d7351a0d822d6a89bdfc389293cd","containerd.io/snapshot/overlaybd/blob-size":"5635","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:7b73345df136081ef2e60fd5cb875771c02c5ecb76015292babbc4711d195a31","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}}]}
\ No newline at end of file
diff --git a/ci/uconv_reproduce/redis/config-turbo.json b/ci/uconv_reproduce/redis/config-turbo.json
new file mode 100644
index 00000000..ca11fbb6
--- /dev/null
+++ b/ci/uconv_reproduce/redis/config-turbo.json
@@ -0,0 +1 @@
+{"created":"2023-12-04T22:45:52Z","architecture":"amd64","os":"linux","config":{"ExposedPorts":{"6379/tcp":{}},"Env":["PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin","GOSU_VERSION=1.17","REDIS_VERSION=7.2.3","REDIS_DOWNLOAD_URL=http://download.redis.io/releases/redis-7.2.3.tar.gz","REDIS_DOWNLOAD_SHA=3e2b196d6eb4ddb9e743088bfc2915ccbb42d40f5a8a3edd8cb69c716ec34be7"],"Entrypoint":["docker-entrypoint.sh"],"Cmd":["redis-server"],"Volumes":{"/data":{}},"WorkingDir":"/data","ArgsEscaped":true},"rootfs":{"type":"layers","diff_ids":["sha256:e33f3ead13b687a680cf13d7f86a569702cf655a0589aafd55612a917d95a08a","sha256:13f488625abb91a45c88f21dc58484580fea79baae85e9592da689a43d506159","sha256:93d35df4e70eb8771c252e8d2a5bc87e53523dd824560907d765482df5eee86c","sha256:9ad9174f99570d22d6d8b397fb66bcc4741bac4fd15fd36cc7d7fa97b126725f","sha256:43d4f5ead817f143fea6f4d8e9d0577822fadc31849ec416b926d1c3cec3302c","sha256:c671e3b6205d2bb9b239f6a611759ba5f54355b14a7a8e1095206d618859304a","sha256:e3ff243dc4fb5bb31947e888af090e83293fa090a08d48f4b76832a97b81802a","sha256:befd5a810e293950b6492c898f3bb32510a453bbb962e6fc75a8f1708255849b"]},"history":[{"created":"2023-12-04T22:45:52Z","created_by":"/bin/sh -c #(nop) ADD file:ac3cd70031d35e46d86b876934946ffc8756de4de065fbc926dce642dac07ff3 in / "},{"created":"2023-12-04T22:45:52Z","created_by":"/bin/sh -c #(nop)  CMD [\"bash\"]","empty_layer":true},{"created":"2023-12-04T22:45:52Z","created_by":"RUN /bin/sh -c set -eux; \tgroupadd -r -g 999 redis; \tuseradd -r -g redis -u 999 redis # buildkit","comment":"buildkit.dockerfile.v0"},{"created":"2023-12-04T22:45:52Z","created_by":"RUN /bin/sh -c set -eux; \tapt-get update; \tapt-get install -y --no-install-recommends \t\ttzdata \t; \trm -rf /var/lib/apt/lists/* # buildkit","comment":"buildkit.dockerfile.v0"},{"created":"2023-12-04T22:45:52Z","created_by":"ENV GOSU_VERSION=1.17","comment":"buildkit.dockerfile.v0","empty_layer":true},{"created":"2023-12-04T22:45:52Z","created_by":"RUN /bin/sh -c set -eux; \tsavedAptMark=\"$(apt-mark showmanual)\"; \tapt-get update; \tapt-get install -y --no-install-recommends ca-certificates gnupg wget; \trm -rf /var/lib/apt/lists/*; \tarch=\"$(dpkg --print-architecture | awk -F- '{ print $NF }')\"; \tcase \"$arch\" in \t\t'amd64') url='https://github.com/tianon/gosu/releases/download/1.17/gosu-amd64'; sha256='bbc4136d03ab138b1ad66fa4fc051bafc6cc7ffae632b069a53657279a450de3' ;; \t\t'arm64') url='https://github.com/tianon/gosu/releases/download/1.17/gosu-arm64'; sha256='c3805a85d17f4454c23d7059bcb97e1ec1af272b90126e79ed002342de08389b' ;; \t\t'armel') url='https://github.com/tianon/gosu/releases/download/1.17/gosu-armel'; sha256='f9969910fa141140438c998cfa02f603bf213b11afd466dcde8fa940e700945d' ;; \t\t'i386') url='https://github.com/tianon/gosu/releases/download/1.17/gosu-i386'; sha256='087dbb8fe479537e64f9c86fa49ff3b41dee1cbd28739a19aaef83dc8186b1ca' ;; \t\t'mips64el') url='https://github.com/tianon/gosu/releases/download/1.17/gosu-mips64el'; sha256='87140029d792595e660be0015341dfa1c02d1181459ae40df9f093e471d75b70' ;; \t\t'ppc64el') url='https://github.com/tianon/gosu/releases/download/1.17/gosu-ppc64el'; sha256='1891acdcfa70046818ab6ed3c52b9d42fa10fbb7b340eb429c8c7849691dbd76' ;; \t\t'riscv64') url='https://github.com/tianon/gosu/releases/download/1.17/gosu-riscv64'; sha256='38a6444b57adce135c42d5a3689f616fc7803ddc7a07ff6f946f2ebc67a26ba6' ;; \t\t's390x') url='https://github.com/tianon/gosu/releases/download/1.17/gosu-s390x'; sha256='69873bab588192f760547ca1f75b27cfcf106e9f7403fee6fd0600bc914979d0' ;; \t\t'armhf') url='https://github.com/tianon/gosu/releases/download/1.17/gosu-armhf'; sha256='e5866286277ff2a2159fb9196fea13e0a59d3f1091ea46ddb985160b94b6841b' ;; \t\t*) echo \u003e\u00262 \"error: unsupported gosu architecture: '$arch'\"; exit 1 ;; \tesac; \twget -O /usr/local/bin/gosu.asc \"$url.asc\"; \twget -O /usr/local/bin/gosu \"$url\"; \techo \"$sha256 */usr/local/bin/gosu\" | sha256sum -c -; \texport GNUPGHOME=\"$(mktemp -d)\"; \tgpg --batch --keyserver hkps://keys.openpgp.org --recv-keys B42F6819007F00F88E364FD4036A9C25BF357DD4; \tgpg --batch --verify /usr/local/bin/gosu.asc /usr/local/bin/gosu; \tgpgconf --kill all; \trm -rf \"$GNUPGHOME\" /usr/local/bin/gosu.asc; \tapt-mark auto '.*' \u003e /dev/null; \t[ -z \"$savedAptMark\" ] || apt-mark manual $savedAptMark \u003e /dev/null; \tapt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false; \tchmod +x /usr/local/bin/gosu; \tgosu --version; \tgosu nobody true # buildkit","comment":"buildkit.dockerfile.v0"},{"created":"2023-12-04T22:45:52Z","created_by":"ENV REDIS_VERSION=7.2.3","comment":"buildkit.dockerfile.v0","empty_layer":true},{"created":"2023-12-04T22:45:52Z","created_by":"ENV REDIS_DOWNLOAD_URL=http://download.redis.io/releases/redis-7.2.3.tar.gz","comment":"buildkit.dockerfile.v0","empty_layer":true},{"created":"2023-12-04T22:45:52Z","created_by":"ENV REDIS_DOWNLOAD_SHA=3e2b196d6eb4ddb9e743088bfc2915ccbb42d40f5a8a3edd8cb69c716ec34be7","comment":"buildkit.dockerfile.v0","empty_layer":true},{"created":"2023-12-04T22:45:52Z","created_by":"RUN /bin/sh -c set -eux; \t\tsavedAptMark=\"$(apt-mark showmanual)\"; \tapt-get update; \tapt-get install -y --no-install-recommends \t\tca-certificates \t\twget \t\t\t\tdpkg-dev \t\tgcc \t\tlibc6-dev \t\tlibssl-dev \t\tmake \t; \trm -rf /var/lib/apt/lists/*; \t\twget -O redis.tar.gz \"$REDIS_DOWNLOAD_URL\"; \techo \"$REDIS_DOWNLOAD_SHA *redis.tar.gz\" | sha256sum -c -; \tmkdir -p /usr/src/redis; \ttar -xzf redis.tar.gz -C /usr/src/redis --strip-components=1; \trm redis.tar.gz; \t\tgrep -E '^ *createBoolConfig[(]\"protected-mode\",.*, *1 *,.*[)],$' /usr/src/redis/src/config.c; \tsed -ri 's!^( *createBoolConfig[(]\"protected-mode\",.*, *)1( *,.*[)],)$!\\10\\2!' /usr/src/redis/src/config.c; \tgrep -E '^ *createBoolConfig[(]\"protected-mode\",.*, *0 *,.*[)],$' /usr/src/redis/src/config.c; \t\tgnuArch=\"$(dpkg-architecture --query DEB_BUILD_GNU_TYPE)\"; \textraJemallocConfigureFlags=\"--build=$gnuArch\"; \tdpkgArch=\"$(dpkg --print-architecture)\"; \tcase \"${dpkgArch##*-}\" in \t\tamd64 | i386 | x32) extraJemallocConfigureFlags=\"$extraJemallocConfigureFlags --with-lg-page=12\" ;; \t\t*) extraJemallocConfigureFlags=\"$extraJemallocConfigureFlags --with-lg-page=16\" ;; \tesac; \textraJemallocConfigureFlags=\"$extraJemallocConfigureFlags --with-lg-hugepage=21\"; \tgrep -F 'cd jemalloc \u0026\u0026 ./configure ' /usr/src/redis/deps/Makefile; \tsed -ri 's!cd jemalloc \u0026\u0026 ./configure !\u0026'\"$extraJemallocConfigureFlags\"' !' /usr/src/redis/deps/Makefile; \tgrep -F \"cd jemalloc \u0026\u0026 ./configure $extraJemallocConfigureFlags \" /usr/src/redis/deps/Makefile; \t\texport BUILD_TLS=yes; \tmake -C /usr/src/redis -j \"$(nproc)\" all; \tmake -C /usr/src/redis install; \t\tserverMd5=\"$(md5sum /usr/local/bin/redis-server | cut -d' ' -f1)\"; export serverMd5; \tfind /usr/local/bin/redis* -maxdepth 0 \t\t-type f -not -name redis-server \t\t-exec sh -eux -c ' \t\t\tmd5=\"$(md5sum \"$1\" | cut -d\" \" -f1)\"; \t\t\ttest \"$md5\" = \"$serverMd5\"; \t\t' -- '{}' ';' \t\t-exec ln -svfT 'redis-server' '{}' ';' \t; \t\trm -r /usr/src/redis; \t\tapt-mark auto '.*' \u003e /dev/null; \t[ -z \"$savedAptMark\" ] || apt-mark manual $savedAptMark \u003e /dev/null; \tfind /usr/local -type f -executable -exec ldd '{}' ';' \t\t| awk '/=\u003e/ { so = $(NF-1); if (index(so, \"/usr/local/\") == 1) { next }; gsub(\"^/(usr/)?\", \"\", so); print so }' \t\t| sort -u \t\t| xargs -r dpkg-query --search \t\t| cut -d: -f1 \t\t| sort -u \t\t| xargs -r apt-mark manual \t; \tapt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false; \t\tredis-cli --version; \tredis-server --version; \t\techo '{\"spdxVersion\":\"SPDX-2.3\",\"SPDXID\":\"SPDXRef-DOCUMENT\",\"name\":\"redis-server-sbom\",\"packages\":[{\"name\":\"redis-server\",\"versionInfo\":\"7.2.3\",\"SPDXID\":\"SPDXRef-Package--redis-server\",\"externalRefs\":[{\"referenceCategory\":\"PACKAGE-MANAGER\",\"referenceType\":\"purl\",\"referenceLocator\":\"pkg:generic/redis-server@7.2.3?os_name=debian\u0026os_version=bookworm\"}],\"licenseDeclared\":\"BSD-3-Clause\"}]}' \u003e /usr/local/redis.spdx.json # buildkit","comment":"buildkit.dockerfile.v0"},{"created":"2023-12-04T22:45:52Z","created_by":"RUN /bin/sh -c mkdir /data \u0026\u0026 chown redis:redis /data # buildkit","comment":"buildkit.dockerfile.v0"},{"created":"2023-12-04T22:45:52Z","created_by":"VOLUME [/data]","comment":"buildkit.dockerfile.v0","empty_layer":true},{"created":"2023-12-04T22:45:52Z","created_by":"WORKDIR /data","comment":"buildkit.dockerfile.v0"},{"created":"2023-12-04T22:45:52Z","created_by":"COPY docker-entrypoint.sh /usr/local/bin/ # buildkit","comment":"buildkit.dockerfile.v0"},{"created":"2023-12-04T22:45:52Z","created_by":"ENTRYPOINT [\"docker-entrypoint.sh\"]","comment":"buildkit.dockerfile.v0","empty_layer":true},{"created":"2023-12-04T22:45:52Z","created_by":"EXPOSE map[6379/tcp:{}]","comment":"buildkit.dockerfile.v0","empty_layer":true},{"created":"2023-12-04T22:45:52Z","created_by":"CMD [\"redis-server\"]","comment":"buildkit.dockerfile.v0","empty_layer":true}]}
\ No newline at end of file
diff --git a/ci/uconv_reproduce/redis/manifest-turbo.json b/ci/uconv_reproduce/redis/manifest-turbo.json
new file mode 100644
index 00000000..3f4d8408
--- /dev/null
+++ b/ci/uconv_reproduce/redis/manifest-turbo.json
@@ -0,0 +1 @@
+{"schemaVersion":2,"mediaType":"application/vnd.docker.distribution.manifest.v2+json","config":{"mediaType":"application/vnd.docker.container.image.v1+json","digest":"sha256:1d48af0d36137d2affe73331c9eaea339a1df634743d006461a71645d8408d6a","size":9183},"layers":[{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:93d5e7762541cd51f8e8dceea4978516596aa3dd837978334b60f0f8c03ca7b0","size":1124551,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:93d5e7762541cd51f8e8dceea4978516596aa3dd837978334b60f0f8c03ca7b0","containerd.io/snapshot/overlaybd/blob-size":"1124551","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:af107e978371b6cd6339127a05502c5eacd1e6b0e9eb7b2f4aa7b6fc87e2dd81","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:08a96e7b2e9fc7da05e3de321a2c867a83c4d369b8be0f54e3d4a77b16fa6d89","size":6894,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:08a96e7b2e9fc7da05e3de321a2c867a83c4d369b8be0f54e3d4a77b16fa6d89","containerd.io/snapshot/overlaybd/blob-size":"6894","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:b031def5f2c4a8515f6b4e609686a0a9846d8a4308bf6c1d9f41b0bb627275f1","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:19ede912d35b4fbd5acab481830acd652cf1cf24f7850ed620cea134bd6d40a7","size":6109,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:19ede912d35b4fbd5acab481830acd652cf1cf24f7850ed620cea134bd6d40a7","containerd.io/snapshot/overlaybd/blob-size":"6109","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:bf7f0c8796d3701fef70b4099c3302f3a9e017cc615adf5046f95460fd4b921b","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:b7b8b7b4fd94dbbd6a855b7708050f2d392c4cbdbdd329e9394a1e1ca2325425","size":42292,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:b7b8b7b4fd94dbbd6a855b7708050f2d392c4cbdbdd329e9394a1e1ca2325425","containerd.io/snapshot/overlaybd/blob-size":"42292","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:e3b2691a4104bbe54bf413a8ae7b8b442d8fc00af86067a4174261f050cab9a5","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:f0e5dc901d12cf334a845d63fc9b44cb39fd6b1df2f2e847842929b8f7e09419","size":791631,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:f0e5dc901d12cf334a845d63fc9b44cb39fd6b1df2f2e847842929b8f7e09419","containerd.io/snapshot/overlaybd/blob-size":"791631","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:190b4d7a237a66227f26efb851e9731674003d6337dc61e7f3a41aabd8eaf479","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:3786922236f43eeabee3800d6bf106373734b768a9d1e612b024b8a75ff23769","size":5646,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:3786922236f43eeabee3800d6bf106373734b768a9d1e612b024b8a75ff23769","containerd.io/snapshot/overlaybd/blob-size":"5646","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:797591c7970a3db095434a6fd0673ae80c40f814da1c1b39787faf63b8dee51d","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:f6ce1c26c083a0719998a1b7dc1082191c16af6888394e011bbe205eba13af33","size":3613,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:f6ce1c26c083a0719998a1b7dc1082191c16af6888394e011bbe205eba13af33","containerd.io/snapshot/overlaybd/blob-size":"3613","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:4f4fb700ef54461cfa02571ae0db9a0dc1e0cdb5577484a6d75e68dc38e8acc1","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:af8f4fac91e770e200f53474175863f0b7fd62a1b5ca85e0cc2a815b2cf7cb41","size":5778,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:af8f4fac91e770e200f53474175863f0b7fd62a1b5ca85e0cc2a815b2cf7cb41","containerd.io/snapshot/overlaybd/blob-size":"5778","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:45ce3854ac9a2a8cebfac64e81e22a7047de8acc8a255ac6979272bb91eb645a","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}}]}
\ No newline at end of file
diff --git a/ci/uconv_reproduce/ubuntu/config-turbo.json b/ci/uconv_reproduce/ubuntu/config-turbo.json
new file mode 100644
index 00000000..0eb1c557
--- /dev/null
+++ b/ci/uconv_reproduce/ubuntu/config-turbo.json
@@ -0,0 +1 @@
+{"created":"2023-12-12T11:38:59.637410824Z","architecture":"amd64","os":"linux","config":{"Env":["PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin"],"Cmd":["/bin/bash"],"Labels":{"org.opencontainers.image.ref.name":"ubuntu","org.opencontainers.image.version":"22.04"}},"rootfs":{"type":"layers","diff_ids":["sha256:a180e8516e898cd26937f5505319704dba6fa7358116a0e2ae23996fd99dbe60"]},"history":[{"created":"2023-12-12T11:38:57.155589925Z","created_by":"/bin/sh -c #(nop)  ARG RELEASE","empty_layer":true},{"created":"2023-12-12T11:38:57.224861025Z","created_by":"/bin/sh -c #(nop)  ARG LAUNCHPAD_BUILD_ARCH","empty_layer":true},{"created":"2023-12-12T11:38:57.286311609Z","created_by":"/bin/sh -c #(nop)  LABEL org.opencontainers.image.ref.name=ubuntu","empty_layer":true},{"created":"2023-12-12T11:38:57.352164165Z","created_by":"/bin/sh -c #(nop)  LABEL org.opencontainers.image.version=22.04","empty_layer":true},{"created":"2023-12-12T11:38:59.296940147Z","created_by":"/bin/sh -c #(nop) ADD file:2b3b5254f38a790d40e31cb26155609f7fc99ef7bc99eae1e0d67fa9ae605f77 in / "},{"created":"2023-12-12T11:38:59.637410824Z","created_by":"/bin/sh -c #(nop)  CMD [\"/bin/bash\"]","empty_layer":true}]}
\ No newline at end of file
diff --git a/ci/uconv_reproduce/ubuntu/manifest-turbo.json b/ci/uconv_reproduce/ubuntu/manifest-turbo.json
new file mode 100644
index 00000000..e40fc6ef
--- /dev/null
+++ b/ci/uconv_reproduce/ubuntu/manifest-turbo.json
@@ -0,0 +1 @@
+{"schemaVersion":2,"mediaType":"application/vnd.docker.distribution.manifest.v2+json","config":{"mediaType":"application/vnd.docker.container.image.v1+json","digest":"sha256:518b8bf0ebc03e60ac5df4527f55621eef2617fd4b858dccaf4e178ba03c0f11","size":1209},"layers":[{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:604c4d33c8640204c5e6d28a7cd3211e1f34e756153a7dd939e00fc505b406c1","size":1152556,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:604c4d33c8640204c5e6d28a7cd3211e1f34e756153a7dd939e00fc505b406c1","containerd.io/snapshot/overlaybd/blob-size":"1152556","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:a486411936734b0d1d201c8a0ed8e9d449a64d5033fdc33411ec95bc26460efb","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}}]}
\ No newline at end of file
diff --git a/ci/uconv_reproduce/wordpress/config-turbo.json b/ci/uconv_reproduce/wordpress/config-turbo.json
new file mode 100644
index 00000000..9a2532fe
--- /dev/null
+++ b/ci/uconv_reproduce/wordpress/config-turbo.json
@@ -0,0 +1 @@
+{"created":"2023-12-06T20:31:30Z","architecture":"amd64","os":"linux","config":{"ExposedPorts":{"80/tcp":{}},"Env":["PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin","PHPIZE_DEPS=autoconf \t\tdpkg-dev \t\tfile \t\tg++ \t\tgcc \t\tlibc-dev \t\tmake \t\tpkg-config \t\tre2c","PHP_INI_DIR=/usr/local/etc/php","APACHE_CONFDIR=/etc/apache2","APACHE_ENVVARS=/etc/apache2/envvars","PHP_CFLAGS=-fstack-protector-strong -fpic -fpie -O2 -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64","PHP_CPPFLAGS=-fstack-protector-strong -fpic -fpie -O2 -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64","PHP_LDFLAGS=-Wl,-O1 -pie","GPG_KEYS=39B641343D8C104B2B146DC3F9C39DC0B9698544 E60913E4DF209907D8E30D96659A97C9CF2A795A 1198C0117593497A5EC5C199286AF1F9897469DC","PHP_VERSION=8.2.13","PHP_URL=https://www.php.net/distributions/php-8.2.13.tar.xz","PHP_ASC_URL=https://www.php.net/distributions/php-8.2.13.tar.xz.asc","PHP_SHA256=2629bba10117bf78912068a230c68a8fd09b7740267bd8ebd3cfce91515d454b"],"Entrypoint":["docker-entrypoint.sh"],"Cmd":["apache2-foreground"],"Volumes":{"/var/www/html":{}},"WorkingDir":"/var/www/html","StopSignal":"SIGWINCH","ArgsEscaped":true},"rootfs":{"type":"layers","diff_ids":["sha256:e33f3ead13b687a680cf13d7f86a569702cf655a0589aafd55612a917d95a08a","sha256:a981bdd04833ba805d517139c73d4765900e9fcf376280d6d6214af1bd6b8778","sha256:027f5de7fe88041072702dc356b79fc50dd97d24e06f7b4d65b99ea75c4f7830","sha256:fbb748be473fe8f249e8347fce85c9d5a936f3fbb0747838c2f2bf253054787f","sha256:8dd2947c0b3a429ac9adf4f9faa3c15a248122d35897ef8d46dd1e2af3b36c01","sha256:db68b598ddf88bda65f765191ef86608c7aaa126ee0c4669418959ae11e781a4","sha256:e77b3f1483d51adeae13e4d1d69e5cc11b90143822d82b93413a3214b16acb15","sha256:49e1cf1081a4cf6b40f562e368881e71e568b7aa1f9d8644fb56da7eabfe41b7","sha256:66e2fb00208d3702982341cf56a508081c00f86b598b671a98fe61ea09e83a89","sha256:1e659d3861e6b03c5903e5db6219296a3af081dec18f92652435ec4f8c7c3632","sha256:fadf34c01d73497f746004932277becad9870d43cea3bac79efbf3be665837e0","sha256:8e4f893a5f6f6aab38a27190b7ce45ab7b097b700c2ad4b57fbc2b0de42e4558","sha256:a974b31c1d96831d3206e8a6554a00fe71b0b2f14897a4c5739ee587dd435ba9","sha256:93efa414a8f4fb34f41ddeebdf7a1f43c524303b167cca8da28a640f60768d03","sha256:e61d8299dc2ee7195d378ba80c7740a6e6c1caa8baa31b33257085295748f94b","sha256:e54206255b9641210e0b4f1faa50cba41db4a0246adc153f84dc39503a67db7c","sha256:274d932427d51570ffbeab54d17d6e0e761ef91e6182377478b714617e32c899","sha256:fcbfd73149b7721ee77ef9f521e64db7fcaa83afc3979b20e360cdd9925383f5","sha256:af9ee4517e4537ba1bff6a55d3af8ddbad3102b291e4cc6fe8f6a1d7b3cae370","sha256:c8cea1015d2f1531b4f5818e14f469f04f09c70b55c5bf0eec75f2addc19b613","sha256:d118b7f666a055940f7cff38109390afba70fd88f0d3422083871c011c5b8eaf"]},"history":[{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop) ADD file:ac3cd70031d35e46d86b876934946ffc8756de4de065fbc926dce642dac07ff3 in / "},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop)  CMD [\"bash\"]","empty_layer":true},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c set -eux; \t{ \t\techo 'Package: php*'; \t\techo 'Pin: release *'; \t\techo 'Pin-Priority: -1'; \t} \u003e /etc/apt/preferences.d/no-debian-php"},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop)  ENV PHPIZE_DEPS=autoconf \t\tdpkg-dev \t\tfile \t\tg++ \t\tgcc \t\tlibc-dev \t\tmake \t\tpkg-config \t\tre2c","empty_layer":true},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c set -eux; \tapt-get update; \tapt-get install -y --no-install-recommends \t\t$PHPIZE_DEPS \t\tca-certificates \t\tcurl \t\txz-utils \t; \trm -rf /var/lib/apt/lists/*"},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop)  ENV PHP_INI_DIR=/usr/local/etc/php","empty_layer":true},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c set -eux; \tmkdir -p \"$PHP_INI_DIR/conf.d\"; \t[ ! -d /var/www/html ]; \tmkdir -p /var/www/html; \tchown www-data:www-data /var/www/html; \tchmod 1777 /var/www/html"},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop)  ENV APACHE_CONFDIR=/etc/apache2","empty_layer":true},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop)  ENV APACHE_ENVVARS=/etc/apache2/envvars","empty_layer":true},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c set -eux; \tapt-get update; \tapt-get install -y --no-install-recommends apache2; \trm -rf /var/lib/apt/lists/*; \t\tsed -ri 's/^export ([^=]+)=(.*)$/: ${\\1:=\\2}\\nexport \\1/' \"$APACHE_ENVVARS\"; \t\t. \"$APACHE_ENVVARS\"; \tfor dir in \t\t\"$APACHE_LOCK_DIR\" \t\t\"$APACHE_RUN_DIR\" \t\t\"$APACHE_LOG_DIR\" \t\t\"$APACHE_RUN_DIR/socks\" \t; do \t\trm -rvf \"$dir\"; \t\tmkdir -p \"$dir\"; \t\tchown \"$APACHE_RUN_USER:$APACHE_RUN_GROUP\" \"$dir\"; \t\tchmod 1777 \"$dir\"; \tdone; \t\trm -rvf /var/www/html/*; \t\tln -sfT /dev/stderr \"$APACHE_LOG_DIR/error.log\"; \tln -sfT /dev/stdout \"$APACHE_LOG_DIR/access.log\"; \tln -sfT /dev/stdout \"$APACHE_LOG_DIR/other_vhosts_access.log\"; \tchown -R --no-dereference \"$APACHE_RUN_USER:$APACHE_RUN_GROUP\" \"$APACHE_LOG_DIR\""},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c a2dismod mpm_event \u0026\u0026 a2enmod mpm_prefork"},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c { \t\techo '\u003cFilesMatch \\.php$\u003e'; \t\techo '\\tSetHandler application/x-httpd-php'; \t\techo '\u003c/FilesMatch\u003e'; \t\techo; \t\techo 'DirectoryIndex disabled'; \t\techo 'DirectoryIndex index.php index.html'; \t\techo; \t\techo '\u003cDirectory /var/www/\u003e'; \t\techo '\\tOptions -Indexes'; \t\techo '\\tAllowOverride All'; \t\techo '\u003c/Directory\u003e'; \t} | tee \"$APACHE_CONFDIR/conf-available/docker-php.conf\" \t\u0026\u0026 a2enconf docker-php"},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop)  ENV PHP_CFLAGS=-fstack-protector-strong -fpic -fpie -O2 -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64","empty_layer":true},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop)  ENV PHP_CPPFLAGS=-fstack-protector-strong -fpic -fpie -O2 -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64","empty_layer":true},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop)  ENV PHP_LDFLAGS=-Wl,-O1 -pie","empty_layer":true},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop)  ENV GPG_KEYS=39B641343D8C104B2B146DC3F9C39DC0B9698544 E60913E4DF209907D8E30D96659A97C9CF2A795A 1198C0117593497A5EC5C199286AF1F9897469DC","empty_layer":true},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop)  ENV PHP_VERSION=8.2.13","empty_layer":true},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop)  ENV PHP_URL=https://www.php.net/distributions/php-8.2.13.tar.xz PHP_ASC_URL=https://www.php.net/distributions/php-8.2.13.tar.xz.asc","empty_layer":true},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop)  ENV PHP_SHA256=2629bba10117bf78912068a230c68a8fd09b7740267bd8ebd3cfce91515d454b","empty_layer":true},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c set -eux; \t\tsavedAptMark=\"$(apt-mark showmanual)\"; \tapt-get update; \tapt-get install -y --no-install-recommends gnupg; \trm -rf /var/lib/apt/lists/*; \t\tmkdir -p /usr/src; \tcd /usr/src; \t\tcurl -fsSL -o php.tar.xz \"$PHP_URL\"; \t\tif [ -n \"$PHP_SHA256\" ]; then \t\techo \"$PHP_SHA256 *php.tar.xz\" | sha256sum -c -; \tfi; \t\tif [ -n \"$PHP_ASC_URL\" ]; then \t\tcurl -fsSL -o php.tar.xz.asc \"$PHP_ASC_URL\"; \t\texport GNUPGHOME=\"$(mktemp -d)\"; \t\tfor key in $GPG_KEYS; do \t\t\tgpg --batch --keyserver keyserver.ubuntu.com --recv-keys \"$key\"; \t\tdone; \t\tgpg --batch --verify php.tar.xz.asc php.tar.xz; \t\tgpgconf --kill all; \t\trm -rf \"$GNUPGHOME\"; \tfi; \t\tapt-mark auto '.*' \u003e /dev/null; \tapt-mark manual $savedAptMark \u003e /dev/null; \tapt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false"},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop) COPY file:ce57c04b70896f77cc11eb2766417d8a1240fcffe5bba92179ec78c458844110 in /usr/local/bin/ "},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c set -eux; \t\tsavedAptMark=\"$(apt-mark showmanual)\"; \tapt-get update; \tapt-get install -y --no-install-recommends \t\tapache2-dev \t\tlibargon2-dev \t\tlibcurl4-openssl-dev \t\tlibonig-dev \t\tlibreadline-dev \t\tlibsodium-dev \t\tlibsqlite3-dev \t\tlibssl-dev \t\tlibxml2-dev \t\tzlib1g-dev \t; \t\texport \t\tCFLAGS=\"$PHP_CFLAGS\" \t\tCPPFLAGS=\"$PHP_CPPFLAGS\" \t\tLDFLAGS=\"$PHP_LDFLAGS\" \t\tPHP_BUILD_PROVIDER='https://github.com/docker-library/php' \t\tPHP_UNAME='Linux - Docker' \t; \tdocker-php-source extract; \tcd /usr/src/php; \tgnuArch=\"$(dpkg-architecture --query DEB_BUILD_GNU_TYPE)\"; \tdebMultiarch=\"$(dpkg-architecture --query DEB_BUILD_MULTIARCH)\"; \tif [ ! -d /usr/include/curl ]; then \t\tln -sT \"/usr/include/$debMultiarch/curl\" /usr/local/include/curl; \tfi; \t./configure \t\t--build=\"$gnuArch\" \t\t--with-config-file-path=\"$PHP_INI_DIR\" \t\t--with-config-file-scan-dir=\"$PHP_INI_DIR/conf.d\" \t\t\t\t--enable-option-checking=fatal \t\t\t\t--with-mhash \t\t\t\t--with-pic \t\t\t\t--enable-ftp \t\t--enable-mbstring \t\t--enable-mysqlnd \t\t--with-password-argon2 \t\t--with-sodium=shared \t\t--with-pdo-sqlite=/usr \t\t--with-sqlite3=/usr \t\t\t\t--with-curl \t\t--with-iconv \t\t--with-openssl \t\t--with-readline \t\t--with-zlib \t\t\t\t--disable-phpdbg \t\t\t\t--with-pear \t\t\t\t$(test \"$gnuArch\" = 's390x-linux-gnu' \u0026\u0026 echo '--without-pcre-jit') \t\t--with-libdir=\"lib/$debMultiarch\" \t\t\t\t--disable-cgi \t\t\t\t--with-apxs2 \t; \tmake -j \"$(nproc)\"; \tfind -type f -name '*.a' -delete; \tmake install; \tfind \t\t/usr/local \t\t-type f \t\t-perm '/0111' \t\t-exec sh -euxc ' \t\t\tstrip --strip-all \"$@\" || : \t\t' -- '{}' + \t; \tmake clean; \t\tcp -v php.ini-* \"$PHP_INI_DIR/\"; \t\tcd /; \tdocker-php-source delete; \t\tapt-mark auto '.*' \u003e /dev/null; \t[ -z \"$savedAptMark\" ] || apt-mark manual $savedAptMark; \tfind /usr/local -type f -executable -exec ldd '{}' ';' \t\t| awk '/=\u003e/ { so = $(NF-1); if (index(so, \"/usr/local/\") == 1) { next }; gsub(\"^/(usr/)?\", \"\", so); print so }' \t\t| sort -u \t\t| xargs -r dpkg-query --search \t\t| cut -d: -f1 \t\t| sort -u \t\t| xargs -r apt-mark manual \t; \tapt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false; \trm -rf /var/lib/apt/lists/*; \t\tpecl update-channels; \trm -rf /tmp/pear ~/.pearrc; \t\tphp --version"},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop) COPY multi:e11221d43af7136e4dbad5a74e659bcfa753214a9e615c3daf357f1633d9d3d1 in /usr/local/bin/ "},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c docker-php-ext-enable sodium"},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop)  ENTRYPOINT [\"docker-php-entrypoint\"]","empty_layer":true},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop)  STOPSIGNAL SIGWINCH","empty_layer":true},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop) COPY file:e3123fcb6566efa979f945bfac1c94c854a559d7b82723e42118882a8ac4de66 in /usr/local/bin/ "},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop) WORKDIR /var/www/html","empty_layer":true},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop)  EXPOSE 80","empty_layer":true},{"created":"2023-12-06T20:31:30Z","created_by":"/bin/sh -c #(nop)  CMD [\"apache2-foreground\"]","empty_layer":true},{"created":"2023-12-06T20:31:30Z","created_by":"RUN /bin/sh -c set -eux; \tapt-get update; \tapt-get install -y --no-install-recommends \t\tghostscript \t; \trm -rf /var/lib/apt/lists/* # buildkit","comment":"buildkit.dockerfile.v0"},{"created":"2023-12-06T20:31:30Z","created_by":"RUN /bin/sh -c set -ex; \t\tsavedAptMark=\"$(apt-mark showmanual)\"; \t\tapt-get update; \tapt-get install -y --no-install-recommends \t\tlibfreetype6-dev \t\tlibicu-dev \t\tlibjpeg-dev \t\tlibmagickwand-dev \t\tlibpng-dev \t\tlibwebp-dev \t\tlibzip-dev \t; \t\tdocker-php-ext-configure gd \t\t--with-freetype \t\t--with-jpeg \t\t--with-webp \t; \tdocker-php-ext-install -j \"$(nproc)\" \t\tbcmath \t\texif \t\tgd \t\tintl \t\tmysqli \t\tzip \t; \tpecl install imagick-3.6.0; \tdocker-php-ext-enable imagick; \trm -r /tmp/pear; \t\tout=\"$(php -r 'exit(0);')\"; \t[ -z \"$out\" ]; \terr=\"$(php -r 'exit(0);' 3\u003e\u00261 1\u003e\u00262 2\u003e\u00263)\"; \t[ -z \"$err\" ]; \t\textDir=\"$(php -r 'echo ini_get(\"extension_dir\");')\"; \t[ -d \"$extDir\" ]; \tapt-mark auto '.*' \u003e /dev/null; \tapt-mark manual $savedAptMark; \tldd \"$extDir\"/*.so \t\t| awk '/=\u003e/ { so = $(NF-1); if (index(so, \"/usr/local/\") == 1) { next }; gsub(\"^/(usr/)?\", \"\", so); print so }' \t\t| sort -u \t\t| xargs -r dpkg-query --search \t\t| cut -d: -f1 \t\t| sort -u \t\t| xargs -rt apt-mark manual; \t\tapt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false; \trm -rf /var/lib/apt/lists/*; \t\t! { ldd \"$extDir\"/*.so | grep 'not found'; }; \terr=\"$(php --version 3\u003e\u00261 1\u003e\u00262 2\u003e\u00263)\"; \t[ -z \"$err\" ] # buildkit","comment":"buildkit.dockerfile.v0"},{"created":"2023-12-06T20:31:30Z","created_by":"RUN /bin/sh -c set -eux; \tdocker-php-ext-enable opcache; \t{ \t\techo 'opcache.memory_consumption=128'; \t\techo 'opcache.interned_strings_buffer=8'; \t\techo 'opcache.max_accelerated_files=4000'; \t\techo 'opcache.revalidate_freq=2'; \t} \u003e /usr/local/etc/php/conf.d/opcache-recommended.ini # buildkit","comment":"buildkit.dockerfile.v0"},{"created":"2023-12-06T20:31:30Z","created_by":"RUN /bin/sh -c { \t\techo 'error_reporting = E_ERROR | E_WARNING | E_PARSE | E_CORE_ERROR | E_CORE_WARNING | E_COMPILE_ERROR | E_COMPILE_WARNING | E_RECOVERABLE_ERROR'; \t\techo 'display_errors = Off'; \t\techo 'display_startup_errors = Off'; \t\techo 'log_errors = On'; \t\techo 'error_log = /dev/stderr'; \t\techo 'log_errors_max_len = 1024'; \t\techo 'ignore_repeated_errors = On'; \t\techo 'ignore_repeated_source = Off'; \t\techo 'html_errors = Off'; \t} \u003e /usr/local/etc/php/conf.d/error-logging.ini # buildkit","comment":"buildkit.dockerfile.v0"},{"created":"2023-12-06T20:31:30Z","created_by":"RUN /bin/sh -c set -eux; \ta2enmod rewrite expires; \t\ta2enmod remoteip; \t{ \t\techo 'RemoteIPHeader X-Forwarded-For'; \t\techo 'RemoteIPInternalProxy 10.0.0.0/8'; \t\techo 'RemoteIPInternalProxy 172.16.0.0/12'; \t\techo 'RemoteIPInternalProxy 192.168.0.0/16'; \t\techo 'RemoteIPInternalProxy 169.254.0.0/16'; \t\techo 'RemoteIPInternalProxy 127.0.0.0/8'; \t} \u003e /etc/apache2/conf-available/remoteip.conf; \ta2enconf remoteip; \tfind /etc/apache2 -type f -name '*.conf' -exec sed -ri 's/([[:space:]]*LogFormat[[:space:]]+\"[^\"]*)%h([^\"]*\")/\\1%a\\2/g' '{}' + # buildkit","comment":"buildkit.dockerfile.v0"},{"created":"2023-12-06T20:31:30Z","created_by":"RUN /bin/sh -c set -eux; \tversion='6.4.2'; \tsha1='d1aedbfea77b243b09e0ab05b100b782497406dd'; \t\tcurl -o wordpress.tar.gz -fL \"https://wordpress.org/wordpress-$version.tar.gz\"; \techo \"$sha1 *wordpress.tar.gz\" | sha1sum -c -; \t\ttar -xzf wordpress.tar.gz -C /usr/src/; \trm wordpress.tar.gz; \t\t[ ! -e /usr/src/wordpress/.htaccess ]; \t{ \t\techo '# BEGIN WordPress'; \t\techo ''; \t\techo 'RewriteEngine On'; \t\techo 'RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]'; \t\techo 'RewriteBase /'; \t\techo 'RewriteRule ^index\\.php$ - [L]'; \t\techo 'RewriteCond %{REQUEST_FILENAME} !-f'; \t\techo 'RewriteCond %{REQUEST_FILENAME} !-d'; \t\techo 'RewriteRule . /index.php [L]'; \t\techo ''; \t\techo '# END WordPress'; \t} \u003e /usr/src/wordpress/.htaccess; \t\tchown -R www-data:www-data /usr/src/wordpress; \tmkdir wp-content; \tfor dir in /usr/src/wordpress/wp-content/*/ cache; do \t\tdir=\"$(basename \"${dir%/}\")\"; \t\tmkdir \"wp-content/$dir\"; \tdone; \tchown -R www-data:www-data wp-content; \tchmod -R 1777 wp-content # buildkit","comment":"buildkit.dockerfile.v0"},{"created":"2023-12-06T20:31:30Z","created_by":"VOLUME [/var/www/html]","comment":"buildkit.dockerfile.v0","empty_layer":true},{"created":"2023-12-06T20:31:30Z","created_by":"COPY wp-config-docker.php /usr/src/wordpress/ # buildkit","comment":"buildkit.dockerfile.v0"},{"created":"2023-12-06T20:31:30Z","created_by":"COPY docker-entrypoint.sh /usr/local/bin/ # buildkit","comment":"buildkit.dockerfile.v0"},{"created":"2023-12-06T20:31:30Z","created_by":"ENTRYPOINT [\"docker-entrypoint.sh\"]","comment":"buildkit.dockerfile.v0","empty_layer":true},{"created":"2023-12-06T20:31:30Z","created_by":"CMD [\"apache2-foreground\"]","comment":"buildkit.dockerfile.v0","empty_layer":true}]}
\ No newline at end of file
diff --git a/ci/uconv_reproduce/wordpress/manifest-turbo.json b/ci/uconv_reproduce/wordpress/manifest-turbo.json
new file mode 100644
index 00000000..4c5ef8d7
--- /dev/null
+++ b/ci/uconv_reproduce/wordpress/manifest-turbo.json
@@ -0,0 +1 @@
+{"schemaVersion":2,"mediaType":"application/vnd.docker.distribution.manifest.v2+json","config":{"mediaType":"application/vnd.docker.container.image.v1+json","digest":"sha256:b4de25536735fd98d35f54df67a88fe9f98aa8e56d7f3cfa6b8efa79000b02bb","size":16604},"layers":[{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:93d5e7762541cd51f8e8dceea4978516596aa3dd837978334b60f0f8c03ca7b0","size":1124551,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:93d5e7762541cd51f8e8dceea4978516596aa3dd837978334b60f0f8c03ca7b0","containerd.io/snapshot/overlaybd/blob-size":"1124551","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:af107e978371b6cd6339127a05502c5eacd1e6b0e9eb7b2f4aa7b6fc87e2dd81","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:4c7ebac7e7f8a16bebbb038d2e499302495c43819434338e3f3a5869280c1392","size":5528,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:4c7ebac7e7f8a16bebbb038d2e499302495c43819434338e3f3a5869280c1392","containerd.io/snapshot/overlaybd/blob-size":"5528","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:6480d4ad61d22c10d4a7237828e51d8a2ca3b5d60fcdf3d9800350353b5ac3fa","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:a4098ac44bfd674118a738a14fbab19c961307cdf889ee880cd8ab6d1214b5da","size":3728652,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:a4098ac44bfd674118a738a14fbab19c961307cdf889ee880cd8ab6d1214b5da","containerd.io/snapshot/overlaybd/blob-size":"3728652","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:95f5176ece8bbdb815830df5e9eab427554c171d3b1459ced51bd7f991b2d9c5","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:6eb6eb5b6ffc7f87bc06f61db2f863eb052c670ac20f7717af8b6e8c502e5b7b","size":6315,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:6eb6eb5b6ffc7f87bc06f61db2f863eb052c670ac20f7717af8b6e8c502e5b7b","containerd.io/snapshot/overlaybd/blob-size":"6315","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:0ebe7ec824ca8231eb30bfc1bc1416a2e73ecc77cefb226cba43ab8c84676045","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:d729cfeb8f3ed13dcb690164589724ab602b68269f1395c753c86b25f0836087","size":732370,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:d729cfeb8f3ed13dcb690164589724ab602b68269f1395c753c86b25f0836087","containerd.io/snapshot/overlaybd/blob-size":"732370","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:673e01769ec9ab92c5580bf1b3de45ce83ad6fb946a2a1c53bf6f546d61ab109","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:25e3b68969285ea72213e66038c0b533cafc0301c181a6c92cad2f30a85e0f74","size":8355,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:25e3b68969285ea72213e66038c0b533cafc0301c181a6c92cad2f30a85e0f74","containerd.io/snapshot/overlaybd/blob-size":"8355","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:74f0c50b3097295649c2ae489f3540f903bff7f8d18a53e291445c931f6cc7a0","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:5d3fa372874fba47ff77f979eaa96e19175665e2299bb2985a28839071618984","size":7165,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:5d3fa372874fba47ff77f979eaa96e19175665e2299bb2985a28839071618984","containerd.io/snapshot/overlaybd/blob-size":"7165","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:1a19a72eb529a45c1f923059e6e81d8d3fef65976b2272628309d6b46464f661","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:f9688d8888c93028caad9bf2537947e16b016f7f05d96e2a524576ff65be0ad5","size":387537,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:f9688d8888c93028caad9bf2537947e16b016f7f05d96e2a524576ff65be0ad5","containerd.io/snapshot/overlaybd/blob-size":"387537","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:50436df89cfb4bc199a39a93f389b6722c7ea0baa0c56a076b135cf9c4337ffc","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:530492a678c0a2de1338e093baac46748374d26ea0a2de5d8383e53ce0384bde","size":5901,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:530492a678c0a2de1338e093baac46748374d26ea0a2de5d8383e53ce0384bde","containerd.io/snapshot/overlaybd/blob-size":"5901","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:8b616b90f7e6ac6918a6c1b63cd7209432bf96bf18837f173f4d52e8110189df","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:cf263280fb79d0b18cd7cf78c6b5f3572670b636983114774054e544a3fdc951","size":454851,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:cf263280fb79d0b18cd7cf78c6b5f3572670b636983114774054e544a3fdc951","containerd.io/snapshot/overlaybd/blob-size":"454851","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:df9d2e4043f86e2b7f0664e2ad4c18a27a97a6737ae86f196b5c5a1673471f58","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:51660c045e95b363f1c2eff1d2852dba693b5c5367a59f7c56ece3eba0116cec","size":6924,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:51660c045e95b363f1c2eff1d2852dba693b5c5367a59f7c56ece3eba0116cec","containerd.io/snapshot/overlaybd/blob-size":"6924","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:d6236f3e94a1d7933968c52dd07cf9f1cfe84298ad43aad025d0a5486e9500fb","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:ef0799b0e25d2106fa75eebe0b56483af9a58b71cc42380055e83d8c30c451ee","size":6538,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:ef0799b0e25d2106fa75eebe0b56483af9a58b71cc42380055e83d8c30c451ee","containerd.io/snapshot/overlaybd/blob-size":"6538","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:59fa8b76a6b31300b51ab61ab6c40f6bb47c70fd58027b1e2ee53d8de2e601ce","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:6b5ddff6b5eddc8d14e9ff1048465913fd672a93a0562b534256950e5ba2aea1","size":6189,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:6b5ddff6b5eddc8d14e9ff1048465913fd672a93a0562b534256950e5ba2aea1","containerd.io/snapshot/overlaybd/blob-size":"6189","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:99eb3419cf60b135da25ba3ce0d4d6f8ad28d45ff592e274badec2b4d5ac9324","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:834d2ff05f42fddc0cdbc9866fbcc6cc7ff23cadf08866e3a95d49400e763cd3","size":1019248,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:834d2ff05f42fddc0cdbc9866fbcc6cc7ff23cadf08866e3a95d49400e763cd3","containerd.io/snapshot/overlaybd/blob-size":"1019248","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:22f5c20b545ddaebb310e24093556e46342770cfcf30ce996850e6f751aeaa65","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:a06f4247b7fd404e707c06bcb163c5f1160e8b96255a9c66effecd1cf158e093","size":1078568,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:a06f4247b7fd404e707c06bcb163c5f1160e8b96255a9c66effecd1cf158e093","containerd.io/snapshot/overlaybd/blob-size":"1078568","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:1f0d2c1603d0d6095336756bff11794ea7f1741e054da47cb764341e11956a3e","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:647d2ac12d560caba1a6b996bce827dc7615375a2b0f51d7c3d0abb722094fe0","size":6909,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:647d2ac12d560caba1a6b996bce827dc7615375a2b0f51d7c3d0abb722094fe0","containerd.io/snapshot/overlaybd/blob-size":"6909","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:4624824acfeaa10302d0d16c62a8ebe748db54a5f45407a37b4afe000e530038","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:7066234c5322ac633e4abb779571ecd2dbb27b776bcea6fb8f6e8293f793bf9f","size":6609,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:7066234c5322ac633e4abb779571ecd2dbb27b776bcea6fb8f6e8293f793bf9f","containerd.io/snapshot/overlaybd/blob-size":"6609","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:79c3af11cab54ec46a4301653795e642dd2b1471680fcd2f4d2c91024e27de28","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:ddf14d025df79cb932b115f17ce5f7294b3686569c74012b5ad7c9b9d09049f0","size":13508,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:ddf14d025df79cb932b115f17ce5f7294b3686569c74012b5ad7c9b9d09049f0","containerd.io/snapshot/overlaybd/blob-size":"13508","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:e8d8239610fbe0feecb32b687b7bd93a3f45f9a0021441d0b46113c16c429459","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:93483bc0f0f21c9c44bf1add3a9e79edc1eb56deb642c3311ccb1f21fe9ce6ac","size":971908,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:93483bc0f0f21c9c44bf1add3a9e79edc1eb56deb642c3311ccb1f21fe9ce6ac","containerd.io/snapshot/overlaybd/blob-size":"971908","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:a1ff013e1d949ab7328badb2dfa36e2b7c6299b4aeae938297126bfde09f380d","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:7c1f46e8c266005b6cf5e518be8eb5e8b29c60c59c7ef7e22dabd0468715921f","size":6310,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:7c1f46e8c266005b6cf5e518be8eb5e8b29c60c59c7ef7e22dabd0468715921f","containerd.io/snapshot/overlaybd/blob-size":"6310","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:31076364071cff601c1fe5ad59188f489eb813a67eeabc6cff4b231c6d672317","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}},{"mediaType":"application/vnd.docker.image.rootfs.diff.tar.gzip","digest":"sha256:525d4b705a2197479e9ecae90ac7c3a144cd5d1dd25c57b4b1e33dbebde26c9c","size":5861,"annotations":{"containerd.io/snapshot/overlaybd/blob-digest":"sha256:525d4b705a2197479e9ecae90ac7c3a144cd5d1dd25c57b4b1e33dbebde26c9c","containerd.io/snapshot/overlaybd/blob-size":"5861","containerd.io/snapshot/overlaybd/turbo-oci/target-digest":"sha256:87728bbad961b16b1d1e1ea1ce05f297e6a98597738bc55730a4668caa2fb38d","containerd.io/snapshot/overlaybd/turbo-oci/target-media-type":"application/vnd.docker.image.rootfs.diff.tar.gzip","containerd.io/snapshot/overlaybd/version":"0.1.0-turbo.ociv1"}}]}
\ No newline at end of file

From eef69360117d49cf14fba1bd329a3893e42c09eb Mon Sep 17 00:00:00 2001
From: Bowei Zhuang <zhuangbowei.zbw@alibaba-inc.com>
Date: Thu, 25 Jan 2024 10:50:41 +0800
Subject: [PATCH 3/3] ci: add userspace convertor E2E

Signed-off-by: Bowei Zhuang <zhuangbowei.zbw@alibaba-inc.com>
---
 .github/workflows/ci-userspace-convertor.yml | 25 +++++-
 ci/build_image/Dockerfile                    |  6 +-
 ci/build_image/start_services.sh             |  2 -
 ci/scripts/new_registry.sh                   | 85 ++++++++++++++++++++
 ci/scripts/prepare_image.sh                  | 11 +++
 ci/scripts/run_container.sh                  | 25 ++++++
 ci/uconv_reproduce/ci-uconv-reproduce.sh     | 15 ++--
 ci/uconv_reproduce/compare_layers.py         |  4 +-
 cmd/convertor/builder/builder.go             | 31 ++++---
 9 files changed, 173 insertions(+), 31 deletions(-)
 create mode 100755 ci/scripts/new_registry.sh
 create mode 100755 ci/scripts/prepare_image.sh
 create mode 100755 ci/scripts/run_container.sh

diff --git a/.github/workflows/ci-userspace-convertor.yml b/.github/workflows/ci-userspace-convertor.yml
index 2a5350db..7e4795e1 100644
--- a/.github/workflows/ci-userspace-convertor.yml
+++ b/.github/workflows/ci-userspace-convertor.yml
@@ -28,6 +28,8 @@ jobs:
         - /sys/kernel/config:/sys/kernel/config
         - /mnt:/var/lib/containerd
       options: --privileged
+      env:
+        DOCKER_HOST: "unix:///app/dockerd/docker.sock"
 
     steps:
       - name: Checkout
@@ -41,12 +43,29 @@ jobs:
         shell: bash
         run: |
           bash start_services.sh
-          sleep 3s
-          docker run -d -p 5000:5000 --restart always --name registry registry:2
-          sleep 3s
+          sleep 5s
+
+      - name: Prepare Local Registry
+        working-directory: ci/scripts
+        shell: bash
+        run: |
+          bash new_registry.sh
+          bash prepare_image.sh registry.hub.docker.com/overlaybd/centos:centos7.9.2009 localhost:5000/centos:centos7.9.2009 && \
+          bash prepare_image.sh registry.hub.docker.com/overlaybd/ubuntu:22.04          localhost:5000/ubuntu:22.04 && \
+          bash prepare_image.sh registry.hub.docker.com/overlaybd/redis:7.2.3           localhost:5000/redis:7.2.3 && \
+          bash prepare_image.sh registry.hub.docker.com/overlaybd/wordpress:6.4.2       localhost:5000/wordpress:6.4.2 && \
+          bash prepare_image.sh registry.hub.docker.com/overlaybd/nginx:1.25.3          localhost:5000/nginx:1.25.3
 
       - name: CI - uconv reproduce
         working-directory: ci/uconv_reproduce
         shell: bash
         run: |
           bash ci-uconv-reproduce.sh
+
+      - name: CI - uconv E2E
+        working-directory: ci/scripts
+        shell: bash
+        run: |
+          /opt/overlaybd/snapshotter/convertor -r localhost:5000/redis -i 7.2.3 --overlaybd 7.2.3_overlaybd --turboOCI 7.2.3_turbo
+          bash run_container.sh localhost:5000/redis:7.2.3_overlaybd
+          bash run_container.sh localhost:5000/redis:7.2.3_turbo
diff --git a/ci/build_image/Dockerfile b/ci/build_image/Dockerfile
index ce4d9b5f..f465b6ec 100644
--- a/ci/build_image/Dockerfile
+++ b/ci/build_image/Dockerfile
@@ -48,10 +48,8 @@ RUN apt-get update && apt-get install -y apt-transport-https ca-certificates cur
       "deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/docker-archive-keyring.gpg] https://download.docker.com/linux/ubuntu \
       $(lsb_release -cs) stable" | tee /etc/apt/sources.list.d/docker.list > /dev/null && \
     apt-get update && apt-get install -y docker-ce docker-ce-cli containerd.io && \
-    apt-get clean && rm -rf /var/lib/apt/lists/*
-
-RUN \
-    apt update && apt install -y libnl-3-200 libnl-genl-3-200 libcurl4-openssl-dev libaio-dev wget less kmod && \
+    apt-get install -y libnl-3-200 libnl-genl-3-200 libcurl4-openssl-dev libaio-dev wget less kmod && \
+    apt-get clean && rm -rf /var/lib/apt/lists/* && \
     wget https://github.com/containerd/overlaybd/releases/download/v${OBD_VERSION}/overlaybd-${OBD_VERSION}-0ubuntu1.22.04.x86_64.deb && \
     dpkg -i overlaybd-${OBD_VERSION}-0ubuntu1.22.04.x86_64.deb && \
     dpkg -i overlaybd-snapshotter_${RELEASE_VERSION}_amd64.deb && \
diff --git a/ci/build_image/start_services.sh b/ci/build_image/start_services.sh
index 32dd4720..5f9e5248 100644
--- a/ci/build_image/start_services.sh
+++ b/ci/build_image/start_services.sh
@@ -20,5 +20,3 @@ fi
 /opt/overlaybd/snapshotter/overlaybd-snapshotter &>/var/log/overlaybd-snapshotter.log &
 
 /sbin/modprobe overlay && /usr/bin/containerd &>/var/log/containerd.log &
-
-dockerd &>/var/log/dockerd.log &
diff --git a/ci/scripts/new_registry.sh b/ci/scripts/new_registry.sh
new file mode 100755
index 00000000..806aaad9
--- /dev/null
+++ b/ci/scripts/new_registry.sh
@@ -0,0 +1,85 @@
+#!/bin/bash
+#
+# run a HTTPS registry
+
+set -x
+
+mkdir -p /app/dockerd/
+echo '{ "hosts": ["unix:///app/dockerd/docker.sock"] }' > /etc/docker/daemon.json
+dockerd &>/var/log/dockerd.log &
+
+sleep 3
+
+rm -rf /etc/registry/
+mkdir -p /etc/registry/certs/
+mkdir -p /etc/registry/config/
+
+# generate server certifications
+cat << EOF > /etc/registry/openssl.cnf
+[req]
+distinguished_name = req_distinguished_name
+x509_extensions = v3_req
+prompt = no
+
+[req_distinguished_name]
+C = CN
+ST = Beijing
+L = Beijing City
+O = Alibaba
+CN = localhost
+
+[v3_req]
+basicConstraints = CA:FALSE
+keyUsage = nonRepudiation, digitalSignature, keyEncipherment
+subjectAltName = @alt_names
+
+[alt_names]
+DNS.1 = localhost
+IP.1 = 127.0.0.1
+EOF
+
+openssl req -new -x509 -newkey rsa:2048 -sha256 -nodes -config /etc/registry/openssl.cnf \
+  -days 365 -out /etc/registry/certs/server.crt -keyout /etc/registry/certs/server.key
+
+ls /etc/registry/certs/
+cp /etc/registry/certs/server.crt /usr/local/share/ca-certificates/registry.crt
+update-ca-certificates
+
+# start registry
+cat << EOF > /etc/registry/config/config.yml
+version: 0.1
+log:
+  fields:
+    service: registry
+storage:
+  cache:
+    blobdescriptor: inmemory
+  filesystem:
+    rootdirectory: /var/lib/registry
+http:
+  addr: :5000
+  headers:
+    X-Content-Type-Options: [nosniff]
+  tls:
+    certificate: /certs/server.crt
+    key: /certs/server.key
+health:
+  storagedriver:
+    enabled: true
+    interval: 10s
+    threshold: 3
+EOF
+
+docker run -d --restart=always --name registry -p 5000:5000 \
+  -v /etc/registry/certs:/certs \
+  -v /etc/registry/config:/etc/docker/registry/ \
+  registry:2
+
+sleep 5s
+
+docker ps -a
+apt-get update && apt-get install -y lsof
+lsof -i :5000
+curl http://localhost:5000/v2/_catalog
+lsof -i :5000
+curl https://localhost:5000/v2/_catalog
diff --git a/ci/scripts/prepare_image.sh b/ci/scripts/prepare_image.sh
new file mode 100755
index 00000000..9b2484ba
--- /dev/null
+++ b/ci/scripts/prepare_image.sh
@@ -0,0 +1,11 @@
+#!/bin/bash
+
+from=${1:?}
+to=${2:?}
+
+set -x
+
+ctr i pull "${from}"
+ctr i tag "${from}" "${to}"
+ctr i push "${to}"
+ctr i rm "${from}" "${to}"
diff --git a/ci/scripts/run_container.sh b/ci/scripts/run_container.sh
new file mode 100755
index 00000000..f34c45a2
--- /dev/null
+++ b/ci/scripts/run_container.sh
@@ -0,0 +1,25 @@
+#!/bin/bash
+#
+# rpull and run on-demand
+
+image=$1
+container_name=${2:-test}
+
+exit_code=0
+
+/opt/overlaybd/snapshotter/ctr rpull "${image}"
+if ! ctr run -d --net-host --snapshotter=overlaybd "${image}" "${container_name}"; then
+  exit_code=1
+fi
+if ! ctr t ls | grep "${container_name}"; then
+  exit_code=1
+fi
+ctr t kill -s 9 "${container_name}" && sleep 5s && ctr t ls
+ctr c rm "${container_name}" && ctr c ls
+ctr i rm "${image}"
+
+if [[ ${exit_code} -ne 0 ]]; then
+  cat /var/log/overlaybd.log
+fi
+
+exit ${exit_code}
diff --git a/ci/uconv_reproduce/ci-uconv-reproduce.sh b/ci/uconv_reproduce/ci-uconv-reproduce.sh
index c12bd4cd..a0aa1fb6 100644
--- a/ci/uconv_reproduce/ci-uconv-reproduce.sh
+++ b/ci/uconv_reproduce/ci-uconv-reproduce.sh
@@ -1,6 +1,6 @@
 #!/bin/bash
 
-apt install -y python3 jq
+apt update && apt install -y python3 jq
 
 convertor="/opt/overlaybd/snapshotter/convertor"
 images=("centos:centos7.9.2009" "ubuntu:22.04" "redis:7.2.3" "wordpress:6.4.2" "nginx:1.25.3")
@@ -11,11 +11,6 @@ result=0
 
 for image in "${images[@]}"
 do
-    from_img="registry.hub.docker.com/overlaybd/${image}"
-    ctr i pull "${from_img}" &> /dev/null
-    ctr i tag "${from_img}" "${registry}/${image}" &> /dev/null
-    ctr i push "${registry}/${image}" &> /dev/null
-
     img=${image%%":"*}
     tag=${image##*":"}
     echo "${img} ${tag}"
@@ -35,16 +30,16 @@ do
     output_turbo="${workspace}/convert.turbo.out"
 
     ${convertor} -r "${registry}/${img}" -i "${tag}" --overlaybd "${tag_obd}" -d "${workspace}/overlaybd_tmp_conv" &> "${output_obd}"
-    curl -H "Accept: application/vnd.docker.distribution.manifest.v2+json,application/vnd.oci.image.manifest.v1+json" -o "${manifest_obd}" "${registry}/v2/${img}/manifests/${tag_obd}" &> /dev/null
+    curl -H "Accept: application/vnd.docker.distribution.manifest.v2+json,application/vnd.oci.image.manifest.v1+json" -o "${manifest_obd}" "https://${registry}/v2/${img}/manifests/${tag_obd}" &> /dev/null
     configDigest=$(jq '.config.digest' "${manifest_obd}")
     configDigest=${configDigest//\"/}
-    curl -o "${config_obd}" "${registry}/v2/${img}/blobs/${configDigest}" &> /dev/null
+    curl -o "${config_obd}" "https://${registry}/v2/${img}/blobs/${configDigest}" &> /dev/null
 
     ${convertor} -r "${registry}/${img}" -i "${tag}" --turboOCI "${tag_turbo}" -d "${workspace}/turbo_tmp_conv" &> "${output_turbo}"
-    curl -H "Accept: application/vnd.docker.distribution.manifest.v2+json,application/vnd.oci.image.manifest.v1+json" -o "${manifest_turbo}" "${registry}/v2/${img}/manifests/${tag_turbo}" &> /dev/null
+    curl -H "Accept: application/vnd.docker.distribution.manifest.v2+json,application/vnd.oci.image.manifest.v1+json" -o "${manifest_turbo}" "https://${registry}/v2/${img}/manifests/${tag_turbo}" &> /dev/null
     configDigest=$(jq '.config.digest' "${manifest_turbo}")
     configDigest=${configDigest//\"/}
-    curl -o "${config_turbo}" "${registry}/v2/${img}/blobs/${configDigest}" &> /dev/null
+    curl -o "${config_turbo}" "https://${registry}/v2/${img}/blobs/${configDigest}" &> /dev/null
 
     prefix=$(date +%Y%m%d%H%M%S)
 
diff --git a/ci/uconv_reproduce/compare_layers.py b/ci/uconv_reproduce/compare_layers.py
index 29c04388..0e3d46d5 100644
--- a/ci/uconv_reproduce/compare_layers.py
+++ b/ci/uconv_reproduce/compare_layers.py
@@ -48,10 +48,10 @@ def main():
     fb = sys.argv[3]
     if not os.path.exists(fa):
         print("file %s not exist" % fa)
-        return -1
+        sys.exit(-1)
     if not os.path.exists(fb):
         print("file %s not exist" % fb)
-        return -1
+        sys.exit(-1)
     fa_conf = json.load(open(fa, 'r'))
     fb_conf = json.load(open(fb, 'r'))
     if ftype == "manifest":
diff --git a/cmd/convertor/builder/builder.go b/cmd/convertor/builder/builder.go
index 7cb651ed..1ee514a0 100644
--- a/cmd/convertor/builder/builder.go
+++ b/cmd/convertor/builder/builder.go
@@ -83,17 +83,28 @@ func NewOverlayBDBuilder(ctx context.Context, opt BuilderOptions) (Builder, erro
 		TLSClientConfig:       tlsConfig,
 		ExpectContinueTimeout: 5 * time.Second,
 	}
+	client := &http.Client{Transport: transport}
 	resolver := docker.NewResolver(docker.ResolverOptions{
-		Credentials: func(s string) (string, string, error) {
-			if i := strings.IndexByte(opt.Auth, ':'); i > 0 {
-				return opt.Auth[0:i], opt.Auth[i+1:], nil
-			}
-			return "", "", nil
-		},
-		PlainHTTP: opt.PlainHTTP,
-		Client: &http.Client{
-			Transport: transport,
-		},
+		Hosts: docker.ConfigureDefaultRegistries(
+			docker.WithAuthorizer(docker.NewDockerAuthorizer(
+				docker.WithAuthClient(client),
+				docker.WithAuthHeader(make(http.Header)),
+				docker.WithAuthCreds(func(s string) (string, string, error) {
+					if i := strings.IndexByte(opt.Auth, ':'); i > 0 {
+						return opt.Auth[0:i], opt.Auth[i+1:], nil
+					}
+					return "", "", nil
+				}),
+			)),
+			docker.WithClient(client),
+			docker.WithPlainHTTP(func(s string) (bool, error) {
+				if opt.PlainHTTP {
+					return docker.MatchAllHosts(s)
+				} else {
+					return false, nil
+				}
+			}),
+		),
 	})
 	engineBase, err := getBuilderEngineBase(ctx, resolver, opt.Ref, opt.TargetRef)
 	if err != nil {